[Snyk] Upgrade react-native-gesture-handler from 2.14.1 to 2.15.0

[RelxOff]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade react-native-gesture-handler from 2.14.1 to 2.15.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 1 version ahead of your current version.
• The recommended version was released 2 months ago, on 2024-02-05.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Server-side Request Forgery (SSRF) SNYK-JS-IP-6240864	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Path Traversal SNYK-JS-WEBPACKDEVMIDDLEWARE-6476555	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Open Redirect SNYK-JS-EXPRESS-6474509	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-SERIALIZEJAVASCRIPT-6147607	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: react-native-gesture-handler

• 2.15.0 - 2024-02-05
  

  ❗ Important changes

  • macOS Support by @ HeroBanana and @ jfedak in #2588
  • feat: add visionOS support by @ tomekzaw in #2743
  • Add mouseButton prop by @ m-bert in #2676
  • Migrate Gesture Handler to TurboModule by @ j-piasecki in #2354

  🐛 Bug fixes

  • Add checks for the same instance of handler usage across multiple GestureDetectors by @ m-bert in #2694
  • Remove didMountComponentsWithRootTag on the new arch by @ j-piasecki in #2687
  • Fix double start when activateAfterLongPress is used by @ j-piasecki in #2628
  • Reset relevant handler when recognizer gets reset. by @ j-piasecki in #2705
  • Fix inactive handlers staying at finished state by @ m-bert in #2738
  • Change functions in windows module file to no-ops. by @ m-bert in #2741
  • Fix handlers coming back from being cancelled by @ j-piasecki in #2704
  • fix: restore ReactMethod annotation by @ WoLewicki in #2722

  🔢 Miscellaneous

  • Bump react-devtools-core from 4.27.6 to 4.28.4 in /example by @ dependabot in #2650
  • Add workflow_dispatch to workflows by @ j-piasecki in #2295
  • Update supported versions in readme and in docs by @ j-piasecki in #2684
  • Prevent GH actions trigger on forks, update template by @ j-piasecki in #2696
  • Auto add Platform: MacOS label when MacOS is picked in the issue by @ j-piasecki in #2699
  • Change eslint ban-types to warning. by @ m-bert in #2714
  • Fix macOS warning message by @ jfedak in #2713
  • Bump dependencies to stable React Native 0.73.2 by @ j-piasecki in #2698
  • Add macOS app icon by @ jfedak in #2723
  • Bump follow-redirects from 1.15.3 to 1.15.4 in /e2e/web-tests by @ dependabot in #2719

  New Contributors

  • @ mrousavy made their first contribution in #2690
  • @ HeroBanana made their first contribution in #2588
  • @ fxamauri made their first contribution in #2712
  • @ jfedak made their first contribution in #2713
  • @ computerjazz made their first contribution in #2715

  Full Changelog: 2.14.0...2.15.0

• 2.14.1 - 2024-01-12
  

  🐛 Bug fixes

  • fix: Fix types for TouchableWithoutFeedback by @ mrousavy in #2690
  • Add exclude list for PointerCapture by @ m-bert in #2703
  • fix: types for gestureHandlerRootHOC by @ fxamauri in #2712
  • Fix onUp in Fling by @ m-bert in #2709
  • fix(worklet): fix workletization of touch event gesture callbacks by @ computerjazz in #2715

  Full Changelog: 2.14.0...2.14.1

from react-native-gesture-handler GitHub release notes

Commit messages

Package name: react-native-gesture-handler

• 2e5df1c Release 2.15.0 (#2747)
• 009629a Revert "fix: Add support for borderRadii on RectButton (#2691)" (#2746)
• c0b6f71 feat: add visionOS support (#2743)
• 8ea9177 Fix handlers coming back from being cancelled (#2704)
• 60258e2 Change functions in windows module file to no-ops. (#2741)
• 3a23bfa Fix `inactive` handlers staying at finished state (#2738)
• a30f42f Add `mouseButton` prop (#2676)
• 876e9ce Bump follow-redirects from 1.15.3 to 1.15.4 in /e2e/web-tests (#2719)
• db51032 Add macOS app icon (#2723)
• 74c01a3 fix: Add support for borderRadii on RectButton (#2691)
• 160b207 fix: restore ReactMethod annotation (#2722)
• 14e7ac0 Fix double start when `activateAfterLongPress` is used (#2628)
• 7581fde Reset relevant handler when recognizer gets reset. (#2705)
• 7c115be fix(worklet): fix workletization of touch event gesture callbacks (#2715)
• 6563265 Bump dependencies to stable React Native 0.73.2 (#2698)
• 44499f2 Remove `didMountComponentsWithRootTag` on the new arch (#2687)
• 7a13ef5 Fix macOS warning message (#2713)
• 9bea72b Migrate Gesture Handler to TurboModule (#2354)
• f22ada3 Fix `onUp` in `Fling` (#2709)
• b4eba25 fix: types for gestureHandlerRootHOC (#2712)
• 94c462b Change eslint `ban-types` to warning. (#2714)
• 35ec17d Add checks for the same instance of handler usage across multiple `GestureDetectors` (#2694)
• cf45c38 Add exclude list for PointerCapture (#2703)
• bc95f03 Auto add `Platform: MacOS` label when `MacOS` is picked in the issue (#2699)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs